2 matches found
CVE-2025-3540
creationtimestamp| type| source ---|---|--- 2025-04-13 22:53:21+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11567 2025-04-14 00:48:25+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114333561958185836 2025-04-14 01:31:07+00:00|...
CVE-2025-3540 H3C Magic NX15/Magic NX30 Pro/Magic NX400/Magic R3010 HTTP POST Request getCapability FCGI_WizardProtoProcess command injection
A vulnerability classified as critical was found in H3C Magic NX15, Magic NX30 Pro, Magic NX400 and Magic R3010 up to V100R014. Affected by this vulnerability is the function FCGIWizardProtoProcess of the file /api/wizard/getCapability of the component HTTP POST Request Handler. The manipulation...